Docker Blog · @docker
4 followers · 12 posts · Server techhub.socialDocker Scout Demo and Q&A
#Docker #Products #DockerScout #SBOM #Security
#docker #products #dockerscout #sbom #security
Chris Bohnert · @bohnert
25 followers · 84 posts · Server social.vivaldi.netHad coffee with a colleague from the #security team this morning talking about #SBOM s (software bill of materials). Now #tomjones is stuck in my head singing about something entirely different. You’re welcome. #InfoSec #earworm https://youtu.be/WZ32gSLNHfA
#security #sbom #tomjones #infosec #earworm
Jay Cuthrell · @jay
107 followers · 484 posts · Server cuthrell.com🔥⏲️ Fudge Sunday "AI Feel You" A look at recent updates to AI in and around platform engineering and DevX
#ai #llama #llama2 #devsecops #sbom #softwaresupplychain #softwaresupplychainsecurity #DevX #platformengineering #governance #aieducation #aiethics #stem #developerexperience #infrastructureascode #iac #generativeai #genai #llmops #cloudformation #terraform #aifirst #apifirst #cloudfirst #mobilefirst #privacyfirst #securityfirst #aitraining #aitrends
#ai #llama #llama2 #devsecops #sbom #softwaresupplychain #softwaresupplychainsecurity #devx #platformengineering #governance #aieducation #aiethics #stem #developerexperience #infrastructureascode #iac #generativeai #genai #llmops #cloudformation #terraform #aifirst #apifirst #cloudfirst #mobilefirst #privacyfirst #securityfirst #aitraining #aitrends
Open Source Initiative :osi: · @osi
3502 followers · 422 posts · Server social.opensource.orgGitHub added over 17.5 million new package licenses sourced from ClearlyDefined, expanding the license coverage for packages that appear in dependency graph and a repository's #SBOM.
https://github.blog/changelog/2023-07-10-new-license-information-for-17-5-million-packages/
OpenSSF · @openssf
266 followers · 104 posts · Server social.lfx.dev
#SBOM Everywhere & the Security Tooling Working Group: Providing the Best Security Tools for Open Source Developers https://openssf.org/blog/2023/06/30/sbom-everywhere-and-the-security-tooling-working-group-providing-the-best-security-tools-for-open-source-developers/
Jay Cuthrell · @jay
103 followers · 426 posts · Server cuthrell.com
🔥⏲️ Fudge Sunday "Generative AI Thru This" A look at Generative AI for platform engineering
#generative #genai #generativeai #generativeartificialintelligence #statisticalmodeling #gitops #policyascode #iac #pac #cicd #cicdpipelines #sbom #k8s #immutable #immutability #devx #developerexperience #idp #developerportal #developerproductivity #platformengineering #platformengineer #newsletters #newsletter
#generative #genai #generativeai #generativeartificialintelligence #statisticalmodeling #gitops #policyascode #iac #pac #cicd #cicdpipelines #sbom #k8s #immutable #immutability #devx #developerexperience #idp #developerportal #developerproductivity #platformengineering #platformengineer #newsletters #newsletter
Felix Bartels · @felix
53 followers · 196 posts · Server toot.9wd.euEarlier this year I experimented a bit with the #Docker integration of #sbom, not only to know our dependencies, but also to track their individual #licences to make sure we were compliant. Unfortunately, it didn't really fit into our #Gitlab pipeline yet and would require some plumbing changes.
#docker #sbom #licences #gitlab
Felix Bartels · @felix
53 followers · 195 posts · Server toot.9wd.euI just stumbled across an interesting blog by @vmbrasseur. In https://anonymoushash.vmbrasseur.com/2023/04/24/software-bill-of-materials-sbom she gives an introduction to Software Bill of Materials, or #sbom for short. In a world where the complexity of software is only increasing due to the reliance on rapidly changing third-party code, it is a good initiative to see where all your dependencies are and where the potential risks lie.
OpenSSF · @openssf
215 followers · 99 posts · Server social.lfx.devWhy #SBOM Generators Need to Accurately Represent Open Source Licenses by Surendra Pathak, Interlynk https://openssf.org/blog/2023/06/20/why-sbom-generators-need-to-accurately-represent-open-source-licenses/
OpenSSF · @openssf
213 followers · 90 posts · Server social.lfx.devOn Wed, June 14th, CISA is facilitating an SBOM-a-Rama in Los Angeles & the event is open to anyone. More info at: https://cisa.gov/news-events/events/sbom-rama #SBOM
Jay Cuthrell · @jay
102 followers · 361 posts · Server cuthrell.com🔥⏲️ Fudge Sunday "GitOps Goes the World" A look at GitOps and Policy-as-Code (PaC).
#gitops #policyascode #iac #pac #cicd #cicdpipelines #sbom #k8s #immutable #immutability #devx #developerexperience #idp #developerproductivity #platformengineering #platformengineer #opengitops #kyverno #kubernetes #argo #argocd #flux #newsletters #newsletter
#gitops #policyascode #iac #pac #cicd #cicdpipelines #sbom #k8s #immutable #immutability #devx #developerexperience #idp #developerproductivity #platformengineering #platformengineer #opengitops #kyverno #kubernetes #argo #argocd #flux #newsletters #newsletter
Snyk · @snyk
7 followers · 4 posts · Server masto.dsoc.io✨ New blog post: How to generate an #SBOM for #JavaScript and #Nodejs applications!
In this post, @lirantal details how to use the Snyk API or Snyk CLI to generate an SBOM for Node.js applications.
Volkan Özçelik · @volkan
37 followers · 1231 posts · Server z2h.devvalidkube: paste your k8s yaml to validate, clean, secure, audit, and sbom.
#tools #security #kubernetes #validkube #yaml #validator #sbom #infra
#tools #security #kubernetes #validkube #yaml #validator #sbom #infra
Apereo Foundation · @apereo
62 followers · 228 posts · Server social.fossdle.orgSomething for #HigherEd to think about?
"When the #Cybersecurity and Infrastructure Security Agency (#CISA) announced guidelines promoting better security of the software supply chain, the agency touted the software bill of materials (#SBOM) as 'a key building block in security and software supply chain risk management.'”
"One of the key areas is to improve #security around #OpenSource software, and it is expected that the SBOM will play an important role."
https://securityboulevard.com/2023/04/sboms-role-in-open-source-security/
#highered #cybersecurity #cisa #sbom #security #opensource #edtech
VM (Vicky) Brasseur · @vmbrasseur
1567 followers · 1212 posts · Server social.vmbrasseur.com📖 Software Bill of Materials (#SBOM )
Those who wish to incorporate SBOMs into their processes must deal with the growing pains of an evolving ecosystem.
https://anonymoushash.vmbrasseur.com/2023/04/24/software-bill-of-materials-sbom
#sbom #foss #opensource #softwaresupplychain
Jay Cuthrell · @jay
86 followers · 286 posts · Server cuthrell.com🔥⏲️ Fudge Sunday "Press Rewind" This week we take at recent updates in software supply chain security that provide an ability to press rewind.
#security #software #supplychain #sbom #attestation #people #processes
#tools #devsecops #secops #platformengineering #devex #developerexperience #securecoding #internetofthings #embeddedsystems #exploits #computing #cloud #iotsecurity #newsletter #newsletters
#security #software #supplychain #sbom #attestation #people #processes #tools #devsecops #secops #platformengineering #devex #developerexperience #securecoding #internetofthings #embeddedsystems #exploits #computing #cloud #iotsecurity #newsletter #newsletters
ITSPmagazine 🎙️✨:verified: · @ITSPmagazine
232 followers · 754 posts · Server techhub.social🎙️ ✨ A new episode has been published on @ITSPmagazine
Show: ITSPmagazine Event Coverage: RSAC 2023 San Francisco, USA With @Marcociappelli and @seanmartin
Episode: The Importance of Software Bill-of-Materials (SBOMs)
Guest: Allan Friedman
Podcast format: Audio & Video
Enjoy!
#SBOM #CISA #RSAConference #RSAC2023 #RSACcoverage #cybersecurity #infosec #tech #technology
#sbom #cisa #rsaconference #rsac2023 #rsaccoverage #cybersecurity #infosec #tech #Technology
Referenced link: https://hubs.la/Q01JHmXY0
Originally posted by The Linux Foundation / @linuxfoundation@twitter.com: https://twitter.com/linuxfoundation/status/1641470880269074434#m
Big news: GitHub introduces self-service SBOMs, meaning all GitHub projects can now export a software bill of materials!
Learn more on the GitHub blog: https://hubs.la/Q01JHmXY0
#GitHub #SBOM #opensource #cybersecurity @github
#github #sbom #opensource #CyberSecurity
GitHub · @github
2 followers · 11 posts · Server techhub.social
Introducing self-service SBOMs
Check it out! 👇
https://github.blog/2023-03-28-introducing-self-service-sboms/
#SupplyChainSecurity #Sbom #DependencyGraph #Compliance #Security #OpenSource
#supplychainsecurity #sbom #dependencygraph #compliance #security #opensource
OpenSSF · @openssf
121 followers · 26 posts · Server social.lfx.dev
SBOM Everywhere Update and Python SPDX-Tools https://openssf.org/blog/2023/03/27/sbom-everywhere-update-and-python-spdx-tools/ #SBOM #SPDX #Python #OSS #OpenSource #OSSsecurity
#sbom #spdx #python #oss #opensource #osssecurity